Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/2d0ca2-8c3e-4f8c-906c-6ce60226a9e8/1/J_S-PWID0m3GB4DfuBY2HndhEeo.roa
File: J_S-PWID0m3GB4DfuBY2HndhEeo.roa (raw, json)
Hash identifier: ESSsS1+cq0aKQgYEJ6mo6gGRvXmOJ7IVFULI26kG1w4=
Subject key identifier: 27:F4:BE:3D:62:03:D2:6D:C6:07:80:DF:B8:16:36:1E:77:61:11:EA
Certificate issuer: /CN=e4da33a58fb47634d614ec09a6898de0f58006fe
Certificate serial: 9A4B
Authority key identifier: E4:DA:33:A5:8F:B4:76:34:D6:14:EC:09:A6:89:8D:E0:F5:80:06:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5NozpY-0djTWFOwJpomN4PWABv4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/2d0ca2-8c3e-4f8c-906c-6ce60226a9e8/1/J_S-PWID0m3GB4DfuBY2HndhEeo.roa
Signing time: Mon 02 May 2022 09:28:13 +0000
ROA not before: Mon 02 May 2022 09:28:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212499
IP address blocks: 185.206.68.0/24 maxlen: 24
2a10:9400::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39499 (0x9a4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4da33a58fb47634d614ec09a6898de0f58006fe
Validity
Not Before: May 2 09:28:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27f4be3d6203d26dc60780dfb816361e776111ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6c:77:a3:55:61:08:52:1a:be:90:d6:63:9a:
22:04:2e:95:5d:c8:dc:ca:25:e0:5e:cd:29:4c:21:
14:11:be:aa:38:6d:79:70:f4:74:fa:3b:a7:8e:52:
e6:7c:69:ae:f2:5c:84:ea:ed:a6:2c:b4:c8:a6:71:
de:2c:c8:28:0b:c6:52:b1:bc:6c:53:98:c0:10:8f:
5c:a3:b1:8d:7f:74:31:96:60:34:72:3d:87:6c:cf:
2e:c3:84:24:fb:7f:b0:a6:70:91:b1:39:eb:68:f0:
9a:a0:8d:96:ca:3d:a5:db:f7:8a:93:90:e6:89:ab:
16:78:2a:00:17:c3:ef:1e:af:fa:ff:f8:dc:2b:11:
c4:4f:34:aa:5e:98:8c:4b:fe:0f:9a:00:8f:b0:b1:
58:3f:22:53:91:b8:47:a5:bb:ec:0d:f0:fc:66:37:
86:19:49:a7:3a:2a:41:ae:38:78:f7:e9:95:30:8a:
bf:da:22:7e:22:3b:c8:84:0a:90:e4:a5:c2:53:86:
45:39:5b:ac:0a:fd:66:8a:4f:ec:5a:82:38:f9:af:
72:f7:5e:b3:7c:c8:b1:45:48:0f:00:b9:0d:75:de:
4c:eb:71:0f:49:f0:e3:1e:5d:22:b1:a3:2e:9a:f5:
71:03:aa:54:7e:a8:40:d6:9a:65:97:b4:a7:57:93:
9e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:F4:BE:3D:62:03:D2:6D:C6:07:80:DF:B8:16:36:1E:77:61:11:EA
X509v3 Authority Key Identifier:
keyid:E4:DA:33:A5:8F:B4:76:34:D6:14:EC:09:A6:89:8D:E0:F5:80:06:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5NozpY-0djTWFOwJpomN4PWABv4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/2d0ca2-8c3e-4f8c-906c-6ce60226a9e8/1/J_S-PWID0m3GB4DfuBY2HndhEeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/2d0ca2-8c3e-4f8c-906c-6ce60226a9e8/1/5NozpY-0djTWFOwJpomN4PWABv4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.68.0/24
IPv6:
2a10:9400::/32
Signature Algorithm: sha256WithRSAEncryption
17:bd:e6:5c:a0:c1:da:15:61:cb:14:59:d7:84:95:a0:d5:c3:
26:93:d7:d8:c6:b8:e7:9c:42:f5:08:5a:e4:8d:0f:7d:17:c5:
07:6e:76:d9:fe:f2:16:e7:e8:94:c9:f5:62:67:ab:e8:a5:74:
6a:20:2a:ae:e2:0b:54:49:e1:aa:e5:f3:46:f4:ba:d1:c2:0c:
ad:0b:78:0c:75:ea:02:b3:ff:9e:de:73:2b:fd:6e:10:84:39:
30:2a:a6:62:eb:70:36:75:05:26:5e:dd:45:60:81:21:b7:14:
cf:ca:da:d1:42:bd:4f:4a:ec:25:dd:e0:a4:8b:86:dc:0f:1e:
26:1e:dc:07:43:33:3b:4f:1f:24:65:d9:20:d8:f4:d4:66:c4:
a5:f7:44:b5:87:2c:5d:fc:34:d0:34:4b:34:83:0e:a7:1b:f1:
2d:0d:3d:c6:bc:97:7c:7e:c7:da:a9:94:bf:07:f8:2b:8c:7a:
d0:c5:a9:46:50:d7:86:82:8a:67:32:9e:3d:91:19:b9:fb:4e:
27:84:bb:fa:e6:30:ce:9e:33:e6:06:a9:17:a5:50:3f:7a:07:
5f:ae:08:e5:ff:63:be:6a:08:28:4a:20:69:84:ac:06:6a:a0:
26:56:e8:ab:d9:38:85:cd:29:cb:2c:42:68:69:02:13:99:60:
31:61:45:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:29 2023 by rpki-client on console-fra.rpki-client.org